[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ISAKMP-SA & Security Policy

To: ipsec@lists.tislabs.com
Subject: ISAKMP-SA & Security Policy
From: Suresh Kumar <protogen24@yahoo.com>
Date: Mon, 28 Oct 2002 06:36:19 -0800 (PST)
Cc: dharkins@cisco.com, carrel@ipsec.org
Sender: owner-ipsec@lists.tislabs.com

Hello list,

I am a new bee to IPSec. I have learned from reading of IKE-2409 that, ISAKMP-SA, SPI is an concatination of COOKIE of INitiator and COOKIE of responder. Does this mean PF_KEY interface is not used to create SPI for ISAKMP implementation ? Hence there will not any IPSec Policy Set for this SPI ? and Quick Mode exchange is secured by the Keying Material established during the 1St Phase ?. All these interpretations are correct ?

Please clarify.

thanks

Suresh.

Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site

Prev by Date: Re: IKEv2 Key Size Conformance Requirements
Next by Date: Re: IKEv2 Key Size Conformance Requirements
Prev by thread: RE: Last Call: Securing Block Storage Protocols over IP to Proposed Standard
Next by thread: Fw: ISAKMP-SA & Security Policy
Index(es):
- Date
- Thread